La rivista mensile riservata ai soci.

ISSA Journal

ISSA Journal February 2018

The Two Faces of Innovation: From Safe and Dumb to Vulnerable Smart Products and Infrastructure, by Steven W. Teppler. This article discusses the ongoing proliferation of "crime-as-a-service" and its facilitation by insecure and/or defectively coded Internet of Things (IoT) or "smart" devices.

Security Incidents and Breaches in the Healthcare Industry: A Case Study in the Lack of Federal and State Coordination, by Barry S. Herrin - ISSA member, Metro Atlanta Chapter. Federal and state laws governing notification of breach of patient medical information vary, and some of those variations are material. It is important for health care providers to understand the differences between these regulatory schemes and to comply with each.

CPU Bugs: Trading Security for Performance: Exploring the causes and long-term impact from the infamous Meltdown and Spectre vulnerabilities, by Adrian Sanabria. The Meltdown and Spectre CPU bugs dominated technology reporting for the first few weeks of 2018, but was the attention justified? This article explores this new class of security issue and the impact it can have. Patching is even less straightforward in a situation where fixing a security vulnerability may significantly hurt system performance.

Legal Requirements of Notification of Breaches: An Overview, by Steve Kirby - ISSA member, Greater Spokane Chapter. In this article, we examine some of the most frequently referenced laws as examples of some of the issues a security professional should consider regarding notification in the event of a breach.

The Post Exploitation Malware Era, by Meir Brown. This article analyzes seven of the most advanced malware evasion behaviors that are both pervasive in the wild and continue to pose a serious challenge to detection tools.